This issue of XML Daily Newslink is sponsored by:
SAP AG http://www.sap.com
- Federating Identity for the Web
- OpenID 2.0 Spec Approved
- Microsoft Offers Volta Preview for Web Apps Development
- Sun Announces Open-Source Awards Program
- Adobe PDF Version 1.7 Close to International Standard
- OpenOffice.org 2.3 Impresses
Federating Identity for the Web
Phillip J. Windley, InfoWorld
Federated identity has long been a goal of many IT organizations. Empowering one organization to serve as an identity provider for another frees IT from having to manage the identities of partnering organizations' employees and customers, thereby facilitating the pursuit of competitive-advantage projects. In this era of increasing enterprise decentralization, thanks in large part to the Web, establishing a federated identity framework is fast proving as essential as it is hard to pull off. "user-centric identity" is a new approach to federation that has gained momentum as of late. Two technologies in particular have emerged to catch the attention of organizations looking to accelerate their federation efforts: CardSpace, a standard developed by Microsoft to provide a comprehensive solution to user-centric identity problems; and OpenID, a lightweight standard that's the result of the work of multiple companies to create identities based on URLs. CardSpace is built on standards such as WS-Trust, Secure Token Service, and WS-Security. As a result, CardSpace benefits from the public security reviews of these standards. And because both CardSpace and OpenID are open architectures, thorough security reviews of each are possible. The biggest threat to individuals is the so-called 'social engineering' that any identity system allows. Of these, phishing poses the biggest threat at present, and OpenID, like any Web-based authentication scheme, is especially vulnerable. CardSpace's identity selector was invented specifically to foil phishing and related attacks. Moreover, CardSpace's rigid insistence on a consistent user experience reduces the diverse authentication contexts users face when tapping Web-based authentication technologies, thereby increasing the likelihood that they will recognize something out of the ordinary when asked for credentials.
OpenID 2.0 Spec Approved
John Dorsey, Dr. Dobb's Journal
The OpenID Foundation announced the finalized version of OpenID Authentication 2.0 and the related OpenID Attribute Exchange 1.0 specifications. Three members of the OpenID Foundation announced the finalized versions of OpenID Authentication 2.0 and the related OpenID Attribute Exchange 1.0 spec on Monday. David Recordon, Dick Hardt, and Josh Hoyt, who participated in the authoring of OpenID, were attending the Internet Identity Workshop at Computer History Musuem in Mountain View, California when they announced the finalization of the specification, which defines a decentralized, open-source, single-sign on identity framework. OpenID has been adopted by AOL, LiveJournal, WordPress and thousands of other web sites to allow visitors to identify themselves without needing to create a new login or share sensitive information. Google's Blogger and the Drupal content management platform already support the new spec. The OpenID Attribute Exchange 1.0 spec, also announced on Monday, is a service extension that provides a mechanism for moving identity information between web sites. According to the OpenID web site: "As part of the IPR work over the past few months we've collected non-assertion agreements from contributors to both of these specifications as well as all past specifications. These agreements are a way for contributors (and others) to formally declare that they will not assert any patent rights against OpenID implementations. It's important to remember that this has been the work of many folks not only within the OpenID community but also the OpenID Foundation, AOL, Cordance, JanRain, Microsoft, NetMesh, Six Apart, Sxip, Sun Microsystems, Symantec, Verisign and Yahoo!. Microsoft was instrumental in helping with legal support and guidance combined with the insight of Sun and Yahoo! with their joint work in developing the right language. This is great news as it means that today not only is OpenID 2.0 final, but all of the contributors have sent a strong message that OpenID must be freely implementable world-wide."
See also: the OpenID web site
Microsoft Offers Volta Preview for Web Apps Development
Paul Krill, InfoWorld
See also: the Volta web site
Sun Announces Open-Source Awards Program
Eric J. Bruno, DDJ
Sun has announced that it will be offering approximately $1 million per year in awards to participants of any of several contests. Community involvement in any of the following six open-source initiatives is required: (1) GlassFish, Sun's open-source Java EE 5-compilant application server; (2) NetBeans, Sun's open-source IDE; (3) OpenJDK, the GPL-licensed open-source version of Java SE; (4) OpenOffice.org, Sun's open-source office productivity suite; (5) OpenSolaris, the open-source version of the popular server OS, Sun Solaris; (6) OpenSPARC, an open-source community that works on chip design in the open for all to contribute. According to the announcement: "Sun Microsystems made a public commitment to Free and Open Source software (FOSS) and in doing so has contributed billions of dollars, as well as more code, to Free software than any other organization in the public or private sector. In addition to leveraging many industry-wide open source projects, Sun has taken the unique step of opening its core software, hardware and storage technologies and sharing them as Free and open source. This action enables Sun to build its products through the preferred means of co-production and to grow the potential market for Sun products and services by directly attracting users to a free platform, while allowing developers the freedom to identify new opportunities and therefore new markets for the technologies."
See also: the announcement
Adobe PDF Version 1.7 Close to International Standard
Antone Gonsalves, InformationWeek
The next version of Adobe (NSDQ: ADBE) Systems' PDF document format has received overwhelming approval from an international standards body, taking the format close to final adoption. Out of the 15 countries represented on the standards committee of the International Standards Organization, nine voted yes without comments and four gave their approval with comments, James King, PDF architect and senior principal scientist at Adobe said in the company's Inside PDF blog. France was the only member to vote against PDF 1.7, with Russia abstaining. Italy sent comments, but is a non-voting member of the panel. Overall, 205 comments were submitted, which means the concerns will have to be addressed before the file format becomes ISO standard 32000. King, who was nominated by the U.S. as technical editor, said he would prepare responses to all the comments in time for the January 21-23  meeting of the working group. The U.S. was the sponsoring country for PDF 1.7, and the one with the most comments (125). PDF is a popular electronic document format found in business, and Web publishing. Last month, Adobe and Yahoo unveiled plans to launch a service that would insert ads into online PDF documents, and share revenue with the publishers.
See also: the O'Reilly blog
Glen Kunene, DevX.com
OpenOffice.org 2.3 Impresses
Tiffany Maleshefski, eWEEK
The release of OpenOffice.org 2.3 brings several significant improvements to the open-source office productivity suite, including easier upgrade paths for existing Microsoft Office users, improved measures to prevent security breaches, and an array of snazzy new features introduced in the suite's word processing, spreadsheet, presentation and database applications. Meanwhile, all-around improvements to the suite's presentation application, Impress, continue to give users some of the bells and whistles coveted in PowerPoint, such as the ability to now integrate sound across an entire presentation. General improvements made to the spreadsheet application, Calc, and word processing application, Writer, make the case for OpenOffice 2.3 as a potentially easier and definitely cheaper upgrade path for existing Microsoft Office users, who may be considering a transition to Microsoft Office 2007. Though file conversion fidelity continues to improve with each subsequent release of OpenOffice, file fidelity issues still surfaced in my tests, such as page-break issues discovered when trying to convert a Word-formatted document in Writer... OpenOffice.org 2.3's most persuasive set of features, however, continues to be that it is an entirely free product and supports seven platforms: Windows, Linux x86 and PowerPC, Solaris x86 and SPARC, Mac OS X and FreeBSD... I tested the most significant addition to OpenOffice's Writer application, the ability to export newly created files to the MediaWiki format, a feature-rich collaborative editing software that runs Wikipedia... I cut and pasted an entire document into a blank Wiki page and discovered that the italicized text made it through the conversion, as did the hyperlink. The underlined text and bold text, however, did not pass the test. Apostrophes also fared poorly, not maintaining their "smart quotes" status...
See also: the OpenOffice web site
XML Daily Newslink and Cover Pages are sponsored by:
|BEA Systems, Inc.||http://www.bea.com|
|Sun Microsystems, Inc.||http://sun.com|
XML Daily Newslink: http://xml.coverpages.org/newsletter.html
Newsletter Archive: http://xml.coverpages.org/newsletterArchive.html
Newsletter subscribe: firstname.lastname@example.org
Newsletter unsubscribe: email@example.com
Newsletter help: firstname.lastname@example.org
Cover Pages: http://xml.coverpages.org/